SpartaNews

More efficient information gathering from DNS servers

7th Jul 2021
author: Ladislav Lhotka

translation: Petra Raszková

Since the end of January 2021, all authoritative DNS servers operated by CZ.NIC association collect information about DNS transactions (queries and responses) using the new standard format Compacted-DNS (C-DNS).

Its specification is incorporated in RFC 8618. For the process of data gathering is used DNS Probe software developed in CZ.NIC labs in cooperation with FIT VUT in Brno. This completed approximately a half-year phase of transition...
More >>

SPARTA Data Sharing Infrastructure

24th Jun 2021
Data sharing is one of the key aspects of building a comprehensive cybersecurity concept within the T-SHARK programme. Shared cyber incident-related data, extracted using different technological tools; structured contextual information from different sources makes it possible to connect separate events, better understand targets and build situation awareness in the whole ecosystem. 

The specially developed SPARTA Data Sharing infrastructure consists of the integration of two main existing sh...
More >>

ROUNDATABLE: “From education, going through the R&D&i, towards the Intelligent Company”

17th Jun 2021
Last week the “VI National Cybersecurity Research Days” conference (https://2021.jnic.es/programa) was held in Spain, in which Ana Ayerbe from TECNALIA presented SPARTA in a roundtable organised by the Spanish Chapter of the Women4Cyber initiative.

The roundtable covered the different issues related to the cybersecurity supply chain, starting with the education needs to cover the talent gap, going through the different efforts in the Research and Development area, to finalise with the techno...
More >>

Universidad de Las Palmas de Gran Canaria & SPARTA Cybersecurity Curricula Designer

7th Jun 2021
Today we are happy to share with you that, within the context of the Go Cyber with SPARTA campaign, promoted by WP12 – Dissemination and Communication – and leveraged by WP9 – Cybersecurity Training and Awareness, SPARTA has delivered a workshop on how to successfully design and implement a bachelor study program on cybersecurity to the University of Las Palmas de Gran Canaria (ULPGC).

The first session of the workshop started off with a brief presentation of the SPARTA project, the *Go Cybe...
More >>

pz → Python instead of Bash

7th May 2021
author: Edvard Rejthar

translation: Petra Raszková

 

I would like to present you the pz utility as pythonize, intended for a command line user with knowledge of Python. Current Linux distributions have many efficient tools for input processing at their disposal. But have you ever wished that you could use Python syntax instead?

Do you often browse through the manual, and trying to find out how do those switches for formatting behave? Do you find the Bash source code difficult to read? The...
More >>

A First Look at Android Applications in Google Play related to Covid-19

29th Apr 2021
The APKcovid work aims at evaluating the security and efficiency of covid tracing applications, to ensure that these applications limit themselves to the purpose of contact tracing and do not intrude into user privacy by accessing unnecessary information available in the smartphone.

Paper available at: https://arxiv.org/abs/2006.11002

To appear in Springer Empirical Software Engineering, 2021



More >>

VACSINE - Security remediation at the Edge

25th Apr 2021
Vacsine provides a lightweight security orchestration, automation and response tool to deploy on the fly security policies to respond to changing operating conditions and active threats.



More >>

APProver tool: providing a security evaluation of apps

22nd Apr 2021
The APProver tool aims at providing a security evaluation of apps embedded in smartphones, to verify compliance with security policies and do not include malware.



More >>

SPARTA CAPE tool: detecting and mitigating side-channel vulnerabilities

18th Apr 2021
This SPARTA tool, developed within CAPE program, aims at detecting and mitigating side-channel vulnerabilities, attacks that have significantly risen with the publication of SPECTRE or MELTDOWN, and are particularly difficult to handle.



More >>

Evaluating the security of the open-source software supply chain

12th Apr 2021
This flyer presents a series of tools aiming at evaluating the security of the open-source software supply chain. More specifically, we provide tools to evaluate the consequences of vulnerabilities in open source libraries on the applications that use them



More >>